Hi,
Sorry for the late response... See inline...
-Loc
-Original Message-
From: Pierre Habouzit [mailto:madco...@debian.org]
Sent: Saturday, January 31, 2009 2:35 PM
To: Loc Ho
Cc: Herbert Xu; linux-crypto@vger.kernel.org
Subject: Re: [RFC] MPI module
On Fri, Jan 30, 2009 at 06:54:16PM
On Fri, Jan 30, 2009 at 06:54:16PM +, Loc Ho wrote:
> Hi,
>
> I would like to add that you can even handle the TLS/DTLS/SSL packet
> formation in the kernel as well if you provide an algorithms that does
> just that. Right now, most user just use the kernel for the hashing
> and cipher parts.
, January 30, 2009 4:41 AM
To: Pierre Habouzit
Cc: linux-crypto@vger.kernel.org
Subject: Re: [RFC] MPI module
Pierre Habouzit wrote:
>
> So let me rephrase that to be sure we've understood each other. What you
> suggest is to have an IKE-like daemon dealing with the keys and all the
>
Pierre Habouzit wrote:
>
> So let me rephrase that to be sure we've understood each other. What you
> suggest is to have an IKE-like daemon dealing with the keys and all the
> handshakes, and that the kernel would only deal with the symmetric
> ciphers used on the data path. Is that right ?
Eithe
On Fri, Jan 30, 2009 at 03:25:06AM +, Herbert Xu wrote:
> Pierre Habouzit wrote:
> >
> > My endgame is simple, I'd like to see an in-kernel SSL/TLS
> > implementation in Linux happen. There are many reasons to want that,
> > ranging from performance reasons (waking the userland each time you
>
Pierre Habouzit wrote:
>
> My endgame is simple, I'd like to see an in-kernel SSL/TLS
> implementation in Linux happen. There are many reasons to want that,
> ranging from performance reasons (waking the userland each time you
> perform a handshake isn't particularly nice, and it's easy to make
>
